CVE-2013-5705

Publication date

2014-04-15 10:00:00

Family

mitre

State

PUBLISHED

Description

apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header.